Exploit for CVE-2021-0157 & CVE-2021-0158.

  • Slides from our Insomi’Hack2022 talk Insomnihack_Presentation.pdf
  • Detailed discription of the exploitation ROP chain
  • Python code for exploitation, based on Chipsec

Exploitation tools and techniques

  • Micropython environment for EFI shell.
    • Example script for MicroPython peachpy under EFI shell
    • Example script for MicroPython UEFI protocol usage
  • Patched version of EFI shell without 5 seconds delay bootx64.efi

Executing brick on the EFI module

Watch the video

Secure Boot bypass demo

Watch the video

Related projects


View Github